Richard Chirgwin

Contact Mail Follow Twitter RSS feed
NASA's Open Source Rover -- JPL/Caltech image

Build your own NASA space rover: Here are the DIY JPL blueprints

NASA's Jet Propulsion Laboratory (JPL) has been quietly working on a way to let students and interested hobbyists build a planet-exploring rover that's a scaled-down version of the American agency's six-wheeled 'droids. For the past few months, JPL eggheads have been toiling away on the project over on GitHub, basing their …
A Ransom Note

New Zealand school on naughty step after ransomware failure

A Kiwi high school has learned the “don't click on the link” lesson the hard way, with a ransomware attack locking down its student's course work. The Hāwera High School is being asked for US$5,000 to unlock the ransomed files. According to New Zealand's Taranaki Daily News, the attack didn't affect staff or student records, …
router

Peace pays dividend for OpenWRT as 'baseline' release lands on servers

The OpenWRT project has emitted version 18.06, and in doing so, puts to rest the damage done by the March 2016 fork that created the competing project LEDE (Linux Embedded Development Environment). When the two groups completed their merger earlier this year, they said their aim for the future was for OpenWRT to focus on …
linus torvalds

Linux kernel 4.18 delayed: Bug ate my rc7, says Linus Torvalds

Linux kernel supremo Linus Torvalds has taken the rare step of reverting a kernel release candidate – after it went sour. All looked sunny enough on Sunday evening, when he set Linux 4.18-rc7 free to roam: “Unless something odd happens, this should be the last rc for 4.18,” the chief penguinista wrote. Something odd did, …
Crying

Oz government offers privacy concessions on MyHealth Record

Australia's peak medical bodies have won some concessions over the privacy of the country's MyHealth Record, and the government says it will extend the opt-out period to mid-November, but it's unlikely to end the hostile debate over the initiative. Overnight, Health Minister Greg Hunt announced that the government would amend …
iran_flags_648

Hey, don't route the messenger! Telegram redirected through Iran by baffling BGP leak

Updated A bunch of Telegram messages went the long way round on Monday: a BGP leak sent people's Telegram chat communications via systems in Iran. Flagged by OpenDNS's BGPMon as a possible BGP hijack, the cockup could also have been a simple case of a sysadmin typo, since the redirection of packets only lasted two hours and fifteen …
Australian computer history museum's PDP-8

Oz retro computer collection in dire straits, bulldozers on horizon

Australian retro computer fans, it's time to mobilise: the shoestring volunteers trying to preserve computer history here are the end of their lease, money, and wits. So if you have storage space and a sentimental feeling about, say, a DEC MicroVAX 4000, part of a PDP-11, or a Control Data CDC-6600 backplane, you'll be …
A person breaking free of shackles

US trade ban hammers Chinese telco giant ZTE to the tune of $790m

Chinese phone and network maker ZTE has outlined the extent of the damage it suffered due to the early 2018 trade ban imposed by the US – a first quarter net loss of ¥5.4bn ($790m, £602m). shutterstock_222258445-roadblock ZTE now stands for 'zero tech exports' – US govt slaps 7-year ban on biz READ MORE The slide into loss …
India battle tapestry photo via Shutterstock

India mulls ban on probes into anonymized data use – with GDPR-style privacy laws

India is following Europe down the data protection path, with draft legislation criticized as a mixed bag of good and bad laws being proposed on Friday. Under the proposals, there will be a data protection authority with the ability to impose fines; individuals get some new rights over how their data is handled, but not as …
Oz

Australians almost immune from ransomware, topping lists for data safety

Take a bow, Australians: we may have had 242 breaches sent to the information commissioner this quarter, but almost nobody fell victim to ransomware attacks. Of all the data breaches reported to the Office of the Australian Information Commissioner (OAIC) between April and June this year, only two were ransomware attacks. …
Road at night image via Shutterstock

Slurps aplenty in your serve of network news

Security just got a little easier for AWS Elastic Load Balancing customers: the platform now supports redirects and fixed responses. Why does that matter? Because it takes care of something that causes an unexpected number of stumbles – the transition from HTTP to HTTPS. As we discussed earlier this week, HSTS is commonly …

Gin and bear it: Another tight quarter for Juniper, hopes berry high for growth by Q4

Juniper Networks' Q3 revenue is 8 per cent lower than last year, but at $1.2bn it came in ahead of the company's previous guidance, and CEO Rami Rahim now expects Juniper to return to year-on-year growth by the December quarter. GAAP net income was also down 35 per cent year-on-year, to $116.5m. The company warned investors …
Lone penguin image via Shutterstock

Another German state plans switch back from Linux to Windows

The German state of Lower Saxony plans to follow Munich's example, and migrate a reported 13,000 users from Linux back to Windows. Apparently undaunted by the cost of the Munich switch (which we reported in January could be as much as €100m), Lower Saxony is considering making the change in its tax office. The state seems to …
scream

Boffins: Mixed-signal silicon can SCREAM your secrets to all

Side-channel radio attacks just got a whole lot worse: a group of researchers from Eurecom's Software and Systems Security Group has extracted crypto keys from the noise generated by ordinary communications chips. Unlike more esoteric side-channels, which often need physical access to a target machine or some kind of malware …
Couple of slow-coach snails

Spectre/Meltdown fixes in HPC: Want the bad news or the bad news? It's slower, say boffins

HPC admin? Feeling slighted that all the good Spectre/Meltdown mitigation benchmarks ignore big iron? Fear not, a bunch of MIT boffins are on your side. Unfortunately, what they found is that network connections, disk accesses, and computational workloads can all be affected by the fixes, whether in the operating system or the …
cloud

Big Switch pokes a straw into the cloud, sucks its netops onto the premises

What's missing from Virtual Private Clouds? According to Big Switch Networks, it's an on-premises implementation. Sure, Google might have just told the world about its upcoming on-prem Kubernetes alpha, AWS is throwing its Snowball appliance over the fence, and Microsoft's gently extending Azure's on-premises abilities, but …

Sen. Ron Wyden: Adobe Flash is doomed, why is Uncle Sam still using it?

It's bug-ridden, eternally insecure, and on death row – yet Adobe Flash persists on too many US government webpages. Now Senator Ron Wyden (D-OR) wants to hear the sound of this deity-forsaken plugin torn from .gov websites, dragged behind a shed, and a single final gunshot. Regular Reg readers will remember that even Adobe …
Qualcomm

NXP becomes N-nixed-P, Apple snubs Qualcomm modems for Intel chips

Qualcomm has abandoned its long-planned, long-stalled $44bn acquisition of Dutch chip maker NXP Semiconductors – and in its place, Qualy today announced a $30bn share buyback. That was part one of Qualcomm's double-whammy Wednesday. Here's the second-half: Qualcomm's chief financial officer George Davis said on a conference …

MyHealth Record rollout saga shambles on: ALP wants it put on hold

The rollout of Australia's MyHealth Record e-health system is moving from “troubled” towards “shambles”. In the space of the past few days: The Parliamentary Library has contradicted health minister Greg Hunt on the matter of law enforcement access to health records; Hunt has stuck to his guns nonetheless; the Australian …

From toothbrushes to coffee makers to computers: Europe fines Asus, Pioneer, Philips for rigging prices of kit

The European Commission has sent a slightly belated message to the consumer electronics industry that it frowns upon price fixing, this week fining four manufacturers a total of €111m (US$130m, £99m) for breaking European rules as long as seven years ago. The companies on the business end of the regulators are Asus, Denon & …
Undergroundarts.co.uk http://www.shutterstock.com/gallery-79884p1.html

Intel Xeon workhorses boot evil maids out of the hotel: USB-based spying thwarted by fix

Ex-Intel security dragons have breathed fresh fire into the old maxim: if someone has physical access to your machine, you're pwned. US-based Eclypsium, founded by former Chipzillans Yuriy Bulygin and Alex Bazhaniuk, confirmed this week it is possible to pull off a classic evil maid attack against Intel-powered servers and …
Security of IoT

If you're serious about securing IoT gadgets, may as well start here

Can we overcome the SOHOpeless security of the Internet of Things at the home and small business level? An Internet-Draft from Ericsson engineer Mohit Sethi suggests so. Sethi's ambitious proposal isn't destined for the hall of internet standards. Instead, it sets out a possible way to get IoT gadgets connected securely to the …
shutterstock_gold

Want a $200k TIP? ZDI sticks bounties on bugs in big-name server code

A bunch of new bug bounty rewards are up for grabs from the Zero Day Initiative, in a first-come, best-dressed program kicking off on August 1. The Trend Micro-backed operation announced on July 24 what it called the Targeted Incentive Program (TIP). Besides the mention of Microsoft Windows Server 2016, the TIP focuses paying …
People bursting into the party

400GbE party. Loud knock at the door. Music stops. In jumps Juniper

The next round of bonkers-fast upgrades to data center networks is going to be 400Gbps Ethernet – and Juniper Networks has joined the party with a suitable roadmap. This year has been something of a Year Of 400 Gbps Announcements, with Arista saying in February it expects trial deployments of its 400Gbps kit to start next year …
Cheesy pic of man holding face in shame as accusatory finger emerges from display. Photo via Shutterstock

Insecure web still too prevalent: Boffins unveil HSTS wall of shame

How's that migration to "HTTPS everywhere" going? With some Chrome browsers* now flagging insecure sites, there's a lot of work still to do, according to security bods Troy Hunt and Scott Helme. Sceptical looking people check something on a laptop Google Chrome: HTTPS or bust. Insecure HTTP D-Day is tomorrow, folks READ MORE …

Biting the hand that feeds IT © 1998–2018